Lucene search

[email protected]CVE-2016-4922

HistoryOct 13, 2017 - 5:29 p.m.

CVE-2016-4922

2017-10-1317:29:00

CWE-77

[email protected]

web.nvd.nist.gov

junos os

cli commands

exploit

unauthorized access

privilege escalation

security vulnerability

juniper networks

cve-2016-4922

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.8%

JSON

Certain combinations of Junos OS CLI commands and arguments have been found to be exploitable in a way that can allow unauthorized access to the operating system. This may allow any user with permissions to run these CLI commands the ability to achieve elevated privileges and gain complete control of the device. Affected releases are Juniper Networks Junos OS 11.4 prior to 11.4R13-S3; 12.1X46 prior to 12.1X46-D60; 12.1X47 prior to 12.1X47-D45; 12.3 prior to 12.3R12; 12.3X48 prior to 12.3X48-D35; 13.2 prior to 13.2R9; 13.3 prior to 13.3R4-S11, 13.3R9; 14.1 prior to 14.1R4-S12, 14.1R7; 14.1X53 prior to 14.1X53-D28, 14.1X53-D40; 14.1X55 prior to 14.1X55-D35; 14.2 prior to 14.2R3-S10, 14.2R4-S7, 14.2R5; 15.1 prior to 15.1F4, 15.1R3; 15.1X49 prior to 15.1X49-D60; 15.1X53 prior to 15.1X53-D57, 15.1X53-D70.

Affected configurations

NVD

Node

juniperjunosMatch11.4

juniperjunosMatch11.4r1

juniperjunosMatch11.4r10

juniperjunosMatch11.4r11

juniperjunosMatch11.4r12

juniperjunosMatch11.4r2

juniperjunosMatch11.4r3

juniperjunosMatch11.4r4

juniperjunosMatch11.4r5

juniperjunosMatch11.4r6

juniperjunosMatch11.4r7

juniperjunosMatch11.4r8

juniperjunosMatch11.4r9

juniperjunosMatch11.4r13s2

Node

juniperjunosMatch12.1x46

juniperjunosMatch12.1x46d10

juniperjunosMatch12.1x46d15

juniperjunosMatch12.1x46d20

juniperjunosMatch12.1x46d25

juniperjunosMatch12.1x46d30

juniperjunosMatch12.1x46d35

juniperjunosMatch12.1x46d40

juniperjunosMatch12.1x46d45

juniperjunosMatch12.1x46d50

juniperjunosMatch12.1x46d55

Node

juniperjunosMatch12.1x47

juniperjunosMatch12.1x47d10

juniperjunosMatch12.1x47d15

juniperjunosMatch12.1x47d20

juniperjunosMatch12.1x47d25

juniperjunosMatch12.1x47d30

juniperjunosMatch12.1x47d35

juniperjunosMatch12.1x47d40

Node

juniperjunosMatch12.3

juniperjunosMatch12.3r1

juniperjunosMatch12.3r10

juniperjunosMatch12.3r11

juniperjunosMatch12.3r2

juniperjunosMatch12.3r3

juniperjunosMatch12.3r4

juniperjunosMatch12.3r5

juniperjunosMatch12.3r6

juniperjunosMatch12.3r7

juniperjunosMatch12.3r8

juniperjunosMatch12.3r9

Node

juniperjunosMatch12.3x48d10

juniperjunosMatch12.3x48d15

juniperjunosMatch12.3x48d25

juniperjunosMatch12.3x48d30

Node

juniperjunosMatch13.2

juniperjunosMatch13.2r1

juniperjunosMatch13.2r2

juniperjunosMatch13.2r3

juniperjunosMatch13.2r4

juniperjunosMatch13.2r5

juniperjunosMatch13.2r6

juniperjunosMatch13.2r7

juniperjunosMatch13.2r7-s1

juniperjunosMatch13.2r7-s2

juniperjunosMatch13.2r8

Node

juniperjunosMatch13.3

juniperjunosMatch13.3r1

juniperjunosMatch13.3r2

juniperjunosMatch13.3r2-s2

juniperjunosMatch13.3r3

juniperjunosMatch13.3r4

juniperjunosMatch13.3r5

juniperjunosMatch13.3r6

juniperjunosMatch13.3r7

juniperjunosMatch13.3r8

juniperjunosMatch14.1

juniperjunosMatch14.1r1

juniperjunosMatch14.1r2

juniperjunosMatch14.1r3

juniperjunosMatch14.1r4

juniperjunosMatch14.1r5

juniperjunosMatch14.1r6

Node

juniperjunosMatch13.3

juniperjunosMatch13.3r1

juniperjunosMatch13.3r2

juniperjunosMatch13.3r2-s2

juniperjunosMatch13.3r3

juniperjunosMatch13.3r4

juniperjunosMatch13.3r5

juniperjunosMatch13.3r6

juniperjunosMatch13.3r7

juniperjunosMatch13.3r8

Node

juniperjunosMatch14.1

juniperjunosMatch14.1r1

juniperjunosMatch14.1r2

juniperjunosMatch14.1r3

juniperjunosMatch14.1r4

juniperjunosMatch14.1r5

juniperjunosMatch14.1r6

Node

juniperjunosMatch14.1x53

juniperjunosMatch14.1x53d10

juniperjunosMatch14.1x53d15

juniperjunosMatch14.1x53d16

juniperjunosMatch14.1x53d25

juniperjunosMatch14.1x53d26

juniperjunosMatch14.1x53d27

juniperjunosMatch14.1x53d30

juniperjunosMatch14.1x53d35

Node

juniperjunosMatch14.1x55

juniperjunosMatch14.1x55d30

Node

juniperjunosMatch14.2

juniperjunosMatch14.2r1

juniperjunosMatch14.2r2

juniperjunosMatch14.2r3

juniperjunosMatch14.2r4

juniperjunosMatch14.2r5

Node

juniperjunosMatch15.1

juniperjunosMatch15.1a1

juniperjunosMatch15.1f1

juniperjunosMatch15.1f2

juniperjunosMatch15.1f2-s1

juniperjunosMatch15.1f2-s2

juniperjunosMatch15.1f2-s3

juniperjunosMatch15.1f2-s4

juniperjunosMatch15.1f3

juniperjunosMatch15.1r1

juniperjunosMatch15.1r2

Node

juniperjunosMatch15.1x49

juniperjunosMatch15.1x49d10

juniperjunosMatch15.1x49d20

juniperjunosMatch15.1x49d30

juniperjunosMatch15.1x49d35

juniperjunosMatch15.1x49d40

juniperjunosMatch15.1x49d45

juniperjunosMatch15.1x49d50

juniperjunosMatch15.1x49d55

Node

juniperjunosMatch15.1x53d20

juniperjunosMatch15.1x53d21

juniperjunosMatch15.1x53d210

juniperjunosMatch15.1x53d25

juniperjunosMatch15.1x53d30

juniperjunosMatch15.1x53d32

juniperjunosMatch15.1x53d33

juniperjunosMatch15.1x53d34

juniperjunosMatch15.1x53d50

juniperjunosMatch15.1x53d51

juniperjunosMatch15.1x53d52

juniperjunosMatch15.1x53d55

juniperjunosMatch15.1x53d60

juniperjunosMatch15.1x53d61

juniperjunosMatch15.1x53d62

juniperjunosMatch15.1x53d63

juniperjunosMatch15.1x53d64

juniperjunosMatch15.1x53d65

CPENameOperatorVersion
juniper:junosjuniper junoseq11.4
juniper:junosjuniper junoseq11.4r13

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	11.4
juniper:junos	juniper junos	eq	11.4r13

CNA Affected

[
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "11.4 prior to 11.4R13-S3"
      },
      {
        "status": "affected",
        "version": "12.1X46 prior to 12.1X46-D60"
      },
      {
        "status": "affected",
        "version": "12.1X47 prior to 12.1X47-D45"
      },
      {
        "status": "affected",
        "version": "12.3 prior to 12.3R12"
      },
      {
        "status": "affected",
        "version": "12.3X48 prior to 12.3X48-D35"
      },
      {
        "status": "affected",
        "version": "13.2 prior to 13.2R9"
      },
      {
        "status": "affected",
        "version": "13.3 prior to 13.3R4-S11, 13.3R9"
      },
      {
        "status": "affected",
        "version": "14.1 prior to 14.1R4-S12, 14.1R7"
      },
      {
        "status": "affected",
        "version": "14.1X53 prior to 14.1X53-D28, 14.1X53-D40"
      },
      {
        "status": "affected",
        "version": "14.1X55 prior to 14.1X55-D35"
      },
      {
        "status": "affected",
        "version": "14.2 prior to 14.2R3-S10, 14.2R4-S7, 14.2R5"
      },
      {
        "status": "affected",
        "version": "15.1 prior to 15.1F4, 15.1R3"
      },
      {
        "status": "affected",
        "version": "15.1X49 prior to 15.1X49-D60"
      },
      {
        "status": "affected",
        "version": "15.1X53 prior to 15.1X53-D57, 15.1X53-D70"
      }
    ]
  }
]

References

www.securityfocus.com/bid/93534

www.securitytracker.com/id/1037013

kb.juniper.net/JSA10763

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.8%

JSON

Related for CVE-2016-4922

cvelist1 openvas1 nessus2 prion1 nvd1